VIP KODLAR

Real test qilyapmiz

Bu yerga kirishni 🏆
Betadagilar biladi 🤫

t.me/GiftSavdoBot/app

Please open Telegram to view this post

VIEW IN TELEGRAM

540 viewsAsilbek Coder, 16:48

VIP KODLAR

0:23

This media is not supported in your browser

VIEW IN TELEGRAM

Avto tun rejimi ranglarni toʻgʻrilab chiqish kerak buni hozircha qilmay turamiz hozir shunchaki avto rejimni ishlatib koʻrdim

Webapp xavfsizligi qilinmoqda...

{
  "user": {
    "id": 5819317484,
    "first_name": "Asilbek Coder",
    "last_name": "",
    "username": "taxminiy",
    "language_code": "uz",
    "is_premium": true,
    "allows_write_to_pm": true,
    "photo_url": "https://t.me/i/userpic/320/d5RAe_7ZB3tFqyJUzyIOY-7iOS1jdUZd2Ko3lwRCcCH6l4Z7ULWRCUUmRUv2UukI.svg"
  },
  "chat_instance": "2603440481312356585",
  "chat_type": "private",
  "auth_date": "1768419278",
  "signature": "zHD2iIDREnJiDw4W0xcKfL1HYjmxGDWf29eZ0qB1e2_85LdQ-PRMoKaitqTxbd-naaxO-sckYAw1paqdYFBxBg",
  "hash": "d14c11bae0f8d61ae0ac23fbdd86e3f77a83f019bb6bcb4940115ba793a32a90"
}

Bu webapp ga kirganda telegram tomondan beriladigan infolar bu bilan nimalar qilish mumkin? Yani xavfsizlik tomondan webapp faqat botda ochilishi kerak brauzerda emas keyin apilar orqali boshqalarni webapp maʼlumotlariga kirolmasligi oʻzgartirolmasligi kerak

Toʻliq ekran tel, planshet, kompyuter vhkz qurilmalarga alohida sozlanadigan qilindi

Faqat betadagilar uchun
t.me/GiftSavdoBot/beta

636 viewsAsilbek Coder, edited 19:00

VIP KODLAR

Bu webapp ga kirganda telegram tomondan beriladigan infolar bu bilan nimalar qilish mumkin?

Men 2024-yilda qilgan xavfsizlik ham ishlaydi lekin unda kamchilik bor edi foydalanuvchi webapp ga kirganda birinchi webapp.php ga kiradi keyini uni chat_id name username ni olib index.php ga session bilan o'tardi shu o'tish joyida uzulishlar bo'lar edi internet sekin bo'lsa yoki ko'p vaqt tursa lekin o'sha payt uchun xavfsiz edi lekin webapp.php ga kirmasdan yoki o'sha paytda mashhur bo'lgan usul yani webapp ga kirishni bosib keyin internetni o'chirishar edi va telegram webapp url lini ko'rsatib qo'yar edi url orqali brauzerdan kirish mumkin edi lekin men apilarni xavfsiz qilganman hech kim hechkimni malumotini o'zgartirolmas edi. 2025-yil boshida bu xavfsizligimni xavfli joyi chiqdi index.php ga foydalanuvchi chat_id name va username initData bilan o'tar edi shunda chat_id ni o'rgartirib brauzerdan boshqa foydalanuvchilarni bot profiliga kirish ochilib qolgan edi lekin bu xavf tug'dirmadi chunki u webapp imda faqat kiritish mumkin edi yani nimanidir yechib olish yo'q ton stars va ball yig'ish kiritish mumkin edi undan keyin odamlar webapp o'yinlarga qiziqishi kamaya boshladi bu sabab emas global sabablar bor edi misol uchun foyda keltirmasa nima qilasan kirib

Endi bunga yechim topdim deb o'ylayman hechqanday ikkinchi yani webapp.php > index.php ga o'tish bo'lmaydi initData ni tekshirish yo'lini topdim bu bilan internetni o'chirib url nusxa olib yoki chat_id ni o'zgartirib yoki hash ni soxtalashtirib bo'lmaydi

<?php
$BOT_TOKEN = "";//Bot tokeni qo'yiladi

$data = json_decode(file_get_contents("php://input"), true);
$initData = $data['initData'] ?? '';
parse_str($initData, $parsed);

// hash ni ajratib olish
$hash = $parsed['hash'];
unset($parsed['hash']);

// data_check_string yasash
ksort($parsed);
$data_check_string = [];
foreach ($parsed as $k => $v) {
    $data_check_string[] = "$k=$v";
}
$data_check_string = implode("\n", $data_check_string);

// secret key
$secret_key = hash_hmac('sha256', $BOT_TOKEN, 'WebAppData', true);
$calculated_hash = hash_hmac('sha256', $data_check_string, $secret_key);

echo "<pre>
hash: $hash

secret_key: $secret_key

calculated_hash: $calculated_hash

tekshirish: ".hash_equals($calculated_hash, $hash)."</pre>"//true yoki false bo'ladi;

webapp dan kelgan hash va bot tokeni bilan hisoblab calculated_hash ni ketshirsa bo'lar ekan agar webapp dan kelgan hash ni yoki chat_id ni o'zgartirsangiz calculated_hash ga tushmaydi chunki webpp dagi hash bir marta ishlatilinadi signature takrorlanmaydi auth_date ham doim o'zgaradi

Telegramni eski versiyasi bilan url nusxa olib brauzerdan kiruvchilarga qarshi bir usul tuzib chiqdim uni keyinroq betada sinovdan o'tkazamiz menimcha endi url nusxa olib ham kirisholmaydi

15332

685 viewsAsilbek Coder, edited 18:59

VIP KODLAR

https://youtu.be/NG7_nUiK-vc?si=XFP2gs77AbQ9so6s

YouTube

SEN O'ZINGNI ERKIN DEB O'YLAYSANMI? | QULLIK VA PROPAGANDA

Hali ham seni boshqarishyaptimi? Bilib olish uchun testdan o'tib ko'r:
http://top1test.vercel.app

Sen o‘zingni erkinman deb o‘ylaysan: telefon bor, internet bor, ish bor, tanlov bor.
Lekin bu haqiqiy erkinlikmi — yoki tizim bergan illyuziyami?

Bu videoda…

1🔥3👍2

496 viewsAsilbek Coder, 16:33

VIP KODLAR

Forwarded from Osmondagi bolalar

0:45

Media is too big

VIEW IN TELEGRAM

Agar uxlab qolganimda, Mohirdev bo'lmasligi mumkin edi..

To'liq suhbatni YouTube sahifamizda tomosha qiling 👇

https://youtu.be/kP40w5imr3M?si

YouTube | Instagram | Telegram

1211

569 viewsAsilbek Coder, 05:56

VIP KODLAR

Endi bunga yechim topdim deb o'ylayman hechqanday ikkinchi yani webapp.php > index.php ga o'tish bo'lmaydi initData ni tekshirish yo'lini topdim bu bilan internetni o'chirib url nusxa olib yoki chat_id ni o'zgartirib yoki hash ni soxtalashtirib bo'lmaydi

Tez orada shu webapp ni test qilamiz xavfsizlik tomonini

25421

655 viewsAsilbek Coder, 06:16

VIP KODLAR

https://youtu.be/dJzJBecJMNI?si=p5lxNNxGa-2rzu_t

YouTube

Nega Bilimsizlar O‘zini Aqlli Deb O‘ylaydi? | Dunning Kruger effekti

Nega ba’zi odamlar o‘zlarining bilimsizligini sezmaydi? Bu aslida Dunning-Kruger effekti!
Ushbu videoda inson tafakkuri va o‘z-o‘zini baholashdagi ajoyib psixologik illuziyani oddiy misollar bilan tushuntirib beraman. Kundalik hayotda ham ko‘plab hollarda…

571 viewsAsilbek Coder, 04:37

VIP KODLAR

Telegramni eski versiyasi bilan url nusxa olib brauzerdan kiruvchilarga qarshi bir usul tuzib chiqdim

🔜

1🔥1

660 viewsAsilbek Coder, 19:08

VIP KODLAR

data.json

3.7 MB

balki kerak bo'lib qolar

1211

1.03K viewsLXXIII, 19:55

VIP KODLAR

data.json

🖥 Agar ishlatmoqchi bo'lsangiz

<?php

$a = file_get_contents('data.json');

$b = file_exists("used.json")
    ? file_get_contents("used.json")
    : '[]';


$aArr = json_decode($a, true);
$bArr = json_decode($b, true);


$aArr = array_map(fn($v) => trim(str_replace("\r", "", $v)), $aArr);
$bArr = array_map(fn($v) => trim(str_replace("\r", "", $v)), $bArr);


$available = array_diff($aArr, $bArr);

if (empty($available)) {
    die("Bo‘sh nickname qolmadi");
}


$newNick = $available[array_rand($available)];


$bArr[] = $newNick;


file_put_contents("used.json",json_encode($bArr, JSON_UNESCAPED_UNICODE | JSON_PRETTY_PRINT));

echo "Yangi foydalanuvchiga tanlangan nickname: " . $newNick;

‼️ Tushunmaganlar uchun bu yangi foydalanuvchi kirsa unga nickname berish data.json da 154689 ta nickname bor

➕ Shunchaki kerak bo'lib qolsa

Please open Telegram to view this post

VIEW IN TELEGRAM

1221

1.22K viewsLXXIII, 23:11

VIP KODLAR

haa hozir ishlayapti

TG botlar premium emoji ishlatishi, agar sizda premium bolsa unda botlaringiz premium emoji ishlata oladi NFT username kerak emas

11232

731 viewsLXXIII, edited 07:02

VIP KODLAR

haa hozir ishlayapti TG botlar premium emoji ishlatishi, agar sizda premium bolsa unda botlaringiz premium emoji ishlata oladi NFT username kerak emas

example

if(isset($message) and $text=="/prem"){
    bot('sendmessage',[
        'chat_id'=>$chat_id,
        'parse_mode'=>'html',
        'text'=>"<tg-emoji emoji-id='5465348727428374117'>🔥</tg-emoji><tg-emoji emoji-id='5294446571356697709'>🅱️</tg-emoji><tg-emoji emoji-id='5435855307265817327'>🔤</tg-emoji><tg-emoji emoji-id='5350288357454787988'>🔠</tg-emoji><tg-emoji emoji-id='5778371828066034983'>🔠</tg-emoji><tg-emoji emoji-id='5411352115115212280'>🔤</tg-emoji><tg-emoji emoji-id='5204192583865085306'>🔤</tg-emoji><tg-emoji emoji-id='5422604083322176565'>🔤</tg-emoji>",
    ]);
    exit();
}

emoji id larni update dan olasizlar

11532

1K viewsLXXIII, 07:05

VIP KODLAR

haa hozir ishlayapti TG botlar premium emoji ishlatishi, agar sizda premium bolsa unda botlaringiz premium emoji ishlata oladi NFT username kerak emas

Zoʻr boʻlibdi endi premium reaksiya ham bosadi faqat 1 ta bosarkan 3 ta emas

Keyin faqat kanalda ishlayapti bot ichida va guruhda birinchi premium reaksiya bosish ishlamayapti

11442

902 viewsAsilbek Coder, edited 08:03

VIP KODLAR

🐸

796 viewsReaksiya33 bot, edited 08:30

Bot ichida va guruhda ishlayapti kanalda ishlashi uchun botga fragment.com dan 1000 tonga 2-nft username qoʻyish kerak yana bilmadim bu aniq maʼlumot emas balki keyinroq kanalda ham ishlashi mumkin

Hozircha rasmiy maʼlumotni @BotNews dan kutamiz

Sinab koʻrish uchun @Reaksiya33bot ga /emoji deb yuboring

1👍1431

901 viewsAsilbek Coder, edited 09:28

VIP KODLAR

example if(isset($message) and $text=="/prem"){ bot('sendmessage',[ 'chat_id'=>$chat_id, 'parse_mode'=>'html', 'text'=>"<tg-emoji emoji-id='5465348727428374117'>🔥</tg-emoji><tg-emoji emoji-id='5294446571356697709'>🅱️</tg-emoji><tg…

⭐️Premium emoji_id larni qanday olishni bilmayotgan boʻlsangiz mukammal bot tuzib chiqdim unda html, entities va oddiy idlarni olishingiz mumkin

🥳 Agar premiumingiz bo'lmasa lekin emoji_id larni olmoqchi bo'lsangiz premiumi bor kimnidir yoki qaysidir kanal premium emojisi bor xabarni forward qilib olsangiz ham bo'ladi

🚀

Namuna: @vipkodbot

©️

Manba: @vip_kodlar

🔧

Dasturchi: @Asilbek_Coder

Please open Telegram to view this post

VIEW IN TELEGRAM

154👍221

885 viewsAsilbek Coder, edited 15:30

VIP KODLAR

haa o’zimi osvoremi, user agentdan reklama yuborishyapti

739 viewsLXXIII, 13:46

VIP KODLAR

🎁 Foydalanuvchini NFT giftlarini chiqarish

if ($text == "/me") {
    $get = bot('getUserGifts', [
        'user_id' => $from_id,
    ]);
    $allgifts = $get->result->total_count;
    foreach ($get->result->gifts as $gifts) {
        if ($gifts->type == "unique") {
            $agift = $agift . "<tg-emoji emoji-id='" . $gifts->gift->model->sticker->custom_emoji_id . "'>" . $gifts->gift->model->sticker->emoji . "</tg-emoji> - <a href='https://t.me/nft/" . $gifts->gift->name . "'>" . $gifts->gift->base_name . "</a>\n";
        }
    }
    bot('sendmessage', [
        'chat_id' => $chat_id,
        'reply_to_message_id' => $message_id,
        'parse_mode' => 'html',
        'disable_web_page_preview' => true,
        'text' => "<tg-emoji emoji-id='5818715087237549366'>👤</tg-emoji> <a href='tg://user?id=$from_id'>$name</a>\n<tg-emoji emoji-id='5850323366476519158'>🎁</tg-emoji> Barcha sovg'alar: $allgifts\n\n<tg-emoji emoji-id='5337028212864089771'>🎁</tg-emoji> NFT Sovg'alar\n<blockquote expandable>$agift</blockquote>",
    ]);
    exit;
}

⭐️ Premium emojilar bilan

Please open Telegram to view this post

VIEW IN TELEGRAM

51753

971 viewsLXXIII, edited 00:55

VIP KODLAR

Forwarded from teleLakel

In a future bots update, you’ll be able to use colored buttons.
There will be only three colors:
— Danger
— Primary
— Success

You’ll also be able to use premium emojis inside these buttons.

@telelakel

833 viewsAsilbek Coder, 08:19

VIP KODLAR

Tez orada shu webapp ni test qilamiz xavfsizlik tomonini

Webapp xavfsizligini test qilishvoringlar

Test👇
t.me/Sales_guruh_bot/app

1.17K viewsAsilbek Coder, edited 18:07

VIP KODLAR

Asilbek Coder

Webapp xavfsizligini test qilishvoringlar Test👇 t.me/Sales_guruh_bot/app

Webapp ga kirganlar guruh xabarlar reytingi

Qoʻllanma:
1. Webapp ga kirganingizda kanal va guruh chiqadi ustiga bosib obuna boʻlasiz keyin botga kirish ni bosasiz

2. Keyin ✓ ni bosasiz keyin guruh qoidalar ustiga bosing keyin tasdiqlashni boshlash tugmasi yonadi

3. Test javoblari: t.me/VIP_KODLAR/399?comment=10136

4. Testdan oʻtganingizdan keyin webapp yopiladi webappga qayta kirishingiz kerak

t.me/Sales_guruh_bot/app

922 viewsAsilbek Coder, edited 19:57

About

Blog

Apps

Platform